Various embodiments of methods and apparatus for a unified management interface across internal and shared computing applications are disclosed. In some embodiments, one or more processors perform, responsive to receiving a plurality of access management requests at an identity management interface, transmitting an access management instruction to a customer internal application via an on-premise proxy, and transmitting another access management instruction to a shared computing system application via a multi-customer gateway on the shared computing system.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method, comprising: using one or more processors to perform, responsive to receiving a plurality of access management requests at an identity management interface of an identity management module, transmitting an access management instruction to a customer internal application via an on-premise proxy; and transmitting another access management instruction to a shared computing system application via a multi-customer gateway on the shared computing system, wherein the on-premise proxy and the customer internal application are located internal to a firewall, the shared computing system application and the multi-customer gateway on the shared computing system are located external to the firewall, the identity management module is located external to the firewall, and the identity management module comprises one or more tools for allowing a user to create and manage accounts on each of the shared computing system application and the customer internal application.
The method uses one or more processors to manage user access across different systems. When access requests are received at a central identity management interface, the system sends an access instruction to an internal application via an on-premise proxy located behind a firewall. Simultaneously, another access instruction is sent to a shared computing system application (like a cloud service) via a multi-customer gateway located outside the firewall. The identity management module, also outside the firewall, provides tools for users to create and manage their accounts on both the internal and shared systems, creating a unified access management point.
2. The method of claim 1 , wherein the transmitting the access management instruction to a customer internal application further comprises transmitting the access management instruction from an identity management module to the on premise proxy; the transmitting the another access management instruction to the shared computing system application further comprises transmitting the access management instruction from the identity management module to the multi-customer gateway.
Building on the method of unified access management described, the process of sending access instructions to the internal application includes transmitting those instructions from the central identity management module to the on-premise proxy. Similarly, sending access instructions to the shared computing system application includes transmitting those instructions from the identity management module to the multi-customer gateway. This ensures the identity management module is the central point of control for all access requests, routing them appropriately to internal or external systems.
3. The method of claim 1 , further comprising, monitoring the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction.
Expanding on the unified access management method, the system monitors both the shared computing system application and the customer internal application to confirm that access management instructions (sent to each) have been correctly executed. This verification step ensures that changes to user permissions or access rights are properly applied across both internal and external systems after initial access requests are processed.
4. The method of claim 1 , further comprising, monitoring the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction; diagnosing a present problem based at least in part on a failure of fulfillment of the access management instruction or the another access management instruction; and suggesting a correction to the problem.
Further developing the unified access management process, the system monitors the shared computing system and the customer internal application for successful execution of access instructions sent to each. If an access instruction fails to be fulfilled, the system diagnoses the root cause of the problem and suggests a corrective action. This allows for automated troubleshooting and remediation of access management issues across the hybrid environment.
5. The method of claim 1 , further comprising, monitoring the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction as well as patterns of access management instructions and fulfillments; diagnosing a present problem based at least in part on a pattern of failures of access management instruction and fulfillments; and suggesting a correction to the problem.
The unified access management method incorporates advanced monitoring. The system tracks access instruction fulfillment, but also analyzes patterns of access requests and their corresponding fulfillments. If a pattern of failures emerges, the system diagnoses the underlying problem based on this pattern analysis, and suggests a solution. This proactive approach identifies and addresses systematic access management issues before they escalate.
6. The method of claim 1 , further comprising, monitoring the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction as well as patterns of access management instructions and fulfillments; predicting a future problem based at least in part on a pattern of failures of access management instruction and fulfillments; and suggesting a correction to the problem.
In addition to reactive problem solving, the system proactively predicts future access management issues. It monitors access instruction fulfillment, patterns of access requests and fulfillments. Based on identified failure patterns, the system predicts potential future problems and suggests corrective actions to prevent those problems from occurring. This enables a more stable and secure environment.
7. The method of claim 6 , wherein the predicting further comprises predicting based at least in part on a neural networks learning based prediction engine accessing runtime-data to make predictions based on changes in usage patterns.
The system predicts future problems in access management, leveraging a neural network learning-based prediction engine. This engine analyzes runtime data, including usage patterns, to make predictions about potential issues. By adapting to changes in how users interact with the system, the prediction engine can anticipate problems more accurately and suggest appropriate corrections before they impact users.
8. A system, comprising: at least one processor; and a memory comprising program instructions, wherein the program instructions are executable by the at least one processor to: responsive to receiving a plurality of access management requests at an identity management interface of an identity management module, transmit an access management instruction to a customer internal application via an on-premise proxy; and transmit another access management instruction to a shared computing system application via a multi-customer gateway on the shared computing system, wherein the on-premise proxy and the customer internal application are located internal to a firewall, the shared computing system application and the multi-customer gateway on the shared computing system are located external to the firewall, the identity management module is located external to the firewall, and the identity management module comprises program instructions executable by the at least one processor to allow a user to create and manage accounts on each of the shared computing system application and the customer internal application.
The system includes at least one processor and memory with program instructions to manage access across different systems. When access requests are received at a central identity management interface, the system sends an access instruction to an internal application via an on-premise proxy located behind a firewall. Simultaneously, another access instruction is sent to a shared computing system application (like a cloud service) via a multi-customer gateway located outside the firewall. The identity management module, also outside the firewall, provides tools for users to create and manage their accounts on both the internal and shared systems, creating a unified access management point.
9. The system of claim 8 , wherein the program instructions executable by the at least one processor to transmit the access management instruction to a customer internal application further comprise program instructions executable by the at least one processor to transmitting the access management instruction from an identity management module to the on premise proxy; the program instructions executable by the at least one processor to transmit the another access management instruction to the shared computing system application further comprise program instructions executable by the at least one processor to transmit the access management instruction from the identity management module to the multi-customer gateway.
Building on the unified access management system, the process of sending access instructions to the internal application includes transmitting those instructions from the central identity management module to the on-premise proxy. Similarly, sending access instructions to the shared computing system application includes transmitting those instructions from the identity management module to the multi-customer gateway. This ensures the identity management module is the central point of control for all access requests, routing them appropriately to internal or external systems.
10. The system of claim 8 , further comprising, program instructions executable by the at least one processor to monitor the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction.
Expanding on the unified access management system, the system monitors both the shared computing system application and the customer internal application to confirm that access management instructions (sent to each) have been correctly executed. This verification step ensures that changes to user permissions or access rights are properly applied across both internal and external systems after initial access requests are processed.
11. The system of claim 8 , further comprising, program instructions executable by the at least one processor to monitor the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction; program instructions executable by the at least one processor to diagnose a present problem based at least in part on a failure of fulfillment of the access management instruction or the another access management instruction; and program instructions executable by the at least one processor to suggest a correction to the problem.
Further developing the unified access management system, the system monitors the shared computing system and the customer internal application for successful execution of access instructions sent to each. If an access instruction fails to be fulfilled, the system diagnoses the root cause of the problem and suggests a corrective action. This allows for automated troubleshooting and remediation of access management issues across the hybrid environment.
12. The system of claim 8 , further comprising, program instructions executable by the at least one processor to monitor the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction as well as patterns of access management instructions and fulfillments; program instructions executable by the at least one processor to diagnose a present problem based at least in part on a pattern of failures of access management instruction and fulfillments; and program instructions executable by the at least one processor to suggest a correction to the problem.
The unified access management system incorporates advanced monitoring. The system tracks access instruction fulfillment, but also analyzes patterns of access requests and their corresponding fulfillments. If a pattern of failures emerges, the system diagnoses the underlying problem based on this pattern analysis, and suggests a solution. This proactive approach identifies and addresses systematic access management issues before they escalate.
13. The system of claim 12 , wherein the program instructions executable by the at least one processor to diagnose further comprise program instructions executable by the at least one processor to diagnose based at least in part on a neural networks learning based prediction engine accessing runtime-data to make predictions based on changes in usage patterns.
Within the unified access management system, the diagnosis of problems is enhanced using a neural network learning-based prediction engine. This engine accesses runtime data, making predictions based on changes in usage patterns. This allows the system to proactively identify the root causes of access issues.
14. The system of claim 8 , further comprising, monitoring the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction as well as patterns of access management instructions and fulfillments; predicting a future problem based at least in part on a pattern of failures of access management instruction and fulfillments; and suggesting a correction to the problem.
The unified access management system proactively predicts future access management issues. It monitors access instruction fulfillment, patterns of access requests and fulfillments. Based on identified failure patterns, the system predicts potential future problems and suggests corrective actions to prevent those problems from occurring. This enables a more stable and secure environment.
15. A non-transitory computer-readable storage medium storing program instructions, wherein the program instructions are computer-executable to implement: responsive to receiving a plurality of access management requests at an identity management interface transmitting an access management instruction to a customer internal application via an on-premise proxy; and transmitting another access management instruction to a shared computing system application via a multi-customer gateway on the shared computing system, wherein the on-premise proxy and the customer internal application are located internal to a firewall, the shared computing system application and the multi-customer gateway on the shared computing system are located external to the firewall, the identity management module is located external to the firewall, and the identity management module comprises program instructions computer-executable to implement allowing a user to create and manage accounts on each of the shared computing system application and the customer internal application.
A non-transitory computer-readable storage medium stores program instructions for managing user access. When access requests are received at a central identity management interface, the system sends an access instruction to an internal application via an on-premise proxy behind a firewall. Simultaneously, another instruction is sent to a shared system application (cloud) via a multi-customer gateway outside the firewall. The identity management module, also outside the firewall, allows users to create and manage accounts on both internal and shared systems, creating a unified access management point.
16. The non-transitory computer-readable storage medium of claim 15 , wherein the program instructions computer-executable to implement transmitting the access management instruction to a customer internal application further comprise program instructions computer-executable to implement transmitting the access management instruction from an identity management module to the on premise proxy; the program instructions computer-executable to implement transmitting the another access management instruction to the shared computing system application further comprise program instructions computer-executable to implement transmitting the access management instruction from the identity management module to the multi-customer gateway.
Regarding program instructions stored on a computer-readable medium for unified access management, sending access instructions to the internal application includes instructions to transmit those instructions from the central identity management module to the on-premise proxy. Sending access instructions to the shared computing system application includes instructions to transmit them from the identity management module to the multi-customer gateway, ensuring centralized control.
17. The non-transitory computer-readable storage medium of claim 15 , further comprising, program instructions computer-executable to implement monitoring the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction.
The computer-readable medium includes instructions for unified access management which also monitor both the shared computing system application and the customer internal application to confirm that access management instructions (sent to each) have been correctly executed.
18. The non-transitory computer-readable storage medium of claim 15 , further comprising, program instructions computer-executable to implement monitoring the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction; program instructions computer-executable to implement diagnosing a present problem based at least in part on a failure of fulfillment of the access management instruction or the another access management instruction; and program instructions computer-executable to implement suggesting a correction to the problem.
The computer-readable medium with stored program instructions implements monitoring the shared computing system and customer internal applications for access instruction fulfillment. If an instruction fails, the instructions diagnose the cause and suggest a corrective action, providing automated troubleshooting.
19. The non-transitory computer-readable storage medium of claim 15 , further comprising, program instructions computer-executable to implement monitoring the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction as well as patterns of access management instructions and fulfillments; program instructions computer-executable to implement diagnosing a present problem based at least in part on a pattern of failures of access management instruction and fulfillments; and program instructions computer-executable to implement suggesting a correction to the problem.
The computer-readable medium contains program instructions implementing advanced monitoring of access management. Instructions track fulfillment and analyze patterns of access requests and their fulfillments. If failure patterns emerge, the system diagnoses problems and suggests solutions, providing proactive identification and resolution of systematic access issues.
20. The non-transitory computer-readable storage medium of claim 15 , wherein the program instructions computer-executable to implement suggesting further comprise program instructions computer-executable to implement suggesting based at least in part on a neural networks learning based prediction engine accessing runtime-data to make predictions based on changes in usage patterns.
The computer-readable medium's stored instructions for unified access management include instructions to suggest corrections based on a neural network learning-based prediction engine. This engine accesses runtime data to make predictions based on changes in usage patterns.
21. The non-transitory computer-readable storage medium of claim 15 , further comprising, program instructions computer-executable to implement monitoring the shared computing system and the customer internal application for fulfillment of the access management instruction and the another access management instruction as well as patterns of access management instructions and fulfillments; program instructions computer-executable to implement predicting a future problem based at least in part on a pattern of failures of access management instruction and fulfillments; and program instructions computer-executable to implement suggesting a correction to the problem.
The computer-readable medium holds program instructions that proactively predict future access management issues. The system monitors access instruction fulfillment and analyzes patterns of access requests/fulfillments. Based on failure patterns, the system predicts potential future problems and suggests corrective actions to prevent those problems from occurring.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
October 19, 2012
August 13, 2013
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.